VYPR
Moderate severityNVD Advisory· Published Jun 11, 2020· Updated Aug 4, 2024

CVE-2020-13170

CVE-2020-13170

Description

HashiCorp Consul and Consul Enterprise did not appropriately enforce scope for local tokens issued by a primary data center, where replication to a secondary data center was not enabled. Introduced in 1.4.0, fixed in 1.6.6 and 1.7.4.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
github.com/hashicorp/consulGo
>= 1.6.0-beta1, < 1.6.61.6.6
github.com/hashicorp/consulGo
>= 1.7.0, < 1.7.41.7.4

Affected products

3

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.